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© Multimedia network system. 



® There is disclosed a multimedia network system 
for transmitting real-time communication type infor- 
mation such as a television video signal and storage 
type information such as a computer file using at 
least one transmission path. The real-time commu- 
nication type information is encrypted by a secret- 



key, system, and the storage type information is 
encrypted by a public-key system. A common en- 
cryption key of the public-key system is changed in 
1 each communication. High-speed information can be 
safely encrypted and transmitted. 



CM 
< 

in 



oo 

CO 



CL 
Ill 



/-21C 



24A— 




Xerox Copy Centre 



1 



EP 0 438 154 A2 



2 



MULTIMEDIA NETWORK SYSTEM 



BACKGROUND OF THE INVENTION 

The present invention relates to a multimedia 
network system for transmitting real-time commu- 
nication type information such as television video 
signals, and storage type information such as com- 
puter files using at least one transmission path. 

In recent years, optical fiber networks have 
been set up in trunk communication networks, sat- 
ellite communications have been put into practical 
applications, and local area networks (LANs) have 
increasingly been widespread. In order to prevent a 
communication content from being leaked to a third 
party other than a party concerned in communica- 
tions, it is important to constitute a network system 
which can attain an encryption/privacy function. 

So-called information service industries that 
charge depending upon contents and amounts of 
information services via such a communication net- 
work are growing larger. For this reason, it is also 
important to simultaneously record and acquire 
charge information for information services in addi- 
tion to the encryption/privacy function. 

As a conventional information 
encryption/privacy function system, secret-key 
cryptosystem and public-key cryptosystem are 
known. 

For further details of these systems, see D.W. 
Davis, W.L. Pric, "Network Security", edited and 
translated by Tadahiro Uezono and published by 
Nikkei McGraw-Hill Co. (1986). 

These systems will be briefly described below 
(for further details, see the above reference). 

In the secret-key cryptosystem, transmission 
and reception terminals share an 
encryption/decryption key, so that information is 
encrypted/transmitted and decrypted using this 
key. 

As an encryption system of this type, a large 
number of systems, e.g., a simple sum 
encryption/permutation encryption system, an en- 
cryption system called "DES" (data encryption 
standard) which is standardized by U.S. Depart- 
ment of Commerce (National Bureau of Standard), 
and the like are known. 

In the secret-key system, an 
encryption/decryption key must be determined in 
advance between transmission and reception termi- 
nals, and must be kept secret from a third party. If 
a third party knows this key, he or she can easily 
decrypt encrypted information. 

In contrast to this, in the public-key cryp- 
tosystem, a pair of different encryption and decryp- 
tion keys are used, and an encryption key is dis- 
closed to all the terminals. 



Each terminal has its own encryption key. A 
transmission terminal selects a key of a destination 
terminal from the disclosed encryption keys of the 
respective terminals, and encrypts and transmits 
5 information using the selected key. On the other 
hand, a reception terminal decrypts the received 
information using a decryption key paired with the 
selected key. 

In this system, since a pair of keys with which 
70 a decryption key is difficult to determine from an 
encryption key are used, even when the encryption 
key is disclosed, a third party substantially cannot 
decrypt encrypted information. 

Since a secret-key need not be determined in 
15 advance between transmission and reception termi- 
nals, a key will not be known by a third party when 
a key is determined in advance between transmis- 
sion and reception terminals. 

However, the above prior art systems suffer 
20 from the following drawbacks. 

In the secret-key cryptosystem, 

(1) an encryption/decryption key must be deter- 
mined in advance between transmission and re- 
ception terminals, and a key may be known to a 

25 third party during a communication for determin- 
ing the encryption/decryption key; 

(2) even when the same key is repetitively used 
to avoid such undesirable disclosure of the key, 
a third party may find out the key upon compari- 

30 son of a plurality of pieces of information en- 
crypted by the same key; and 

(3) if complex encryption such as the DES is 
performed, the above-mentioned possibility can 
be reduced. However, it is difficult to encrypt 

35 data having a large data transfer volume per unit 
time such as a digital video signal. 
In the public-key cryptosystem, 

(4) it is generally difficult to perform high-speed 
encryption/decryption processing. 

40 Since the two encryption systems suffer from 
the above-mentioned drawbacks (1) to (4), it is 
conventionally difficult to safely encrypt real-time 
communication type information such as a video 
signal which must be transmitted at high speed. 

45 

SUMMARY OF THE INVENTION 

The present invention has been made to solve 
the above drawbacks, and has as its object to 
so provide a multimedia network system which can 
encrypt and transmit real-time communication type 
information such as a video signal which must be 
transmitted at high speed, so that the encrypted 
information cannot be easily decrypted. 

The present invention comprises the following 
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arrangement as means for achieving the above 
object. 

More specifically, a multimedia network system 
for transmitting real-time communication type in- 
formation such as a television video signal and s 
storage type information such as a computer file 
using at least one transmission path, comprises 
secret-key encryption means for encrypting the 
real-time communication type information by 
secret-key system in which only transmitting and 10 
receiving terminals of the information have encryp- 
tion and decryption keys, public-key encryption 
means for encrypting the storage type information 
by a public-key system in which all the terminals 
commonly have their own encryption keys, and is 
only a receiving terminal of the information has its 
own decryption key, and secret-key control means 
for causing the secret-key encryption means to 
change a common encryption key in each commu- 
nication, and causing the public-key encryption 20 
means to encrypt and transmit the changed key. 

The system further comprises time measure- 
ment means for measuring an encryption or de- 
cryption time of a transmission terminal which per- 
forms encryption using a secret-key by the secret- 25 
key encryption means or a reception terminal 
which performs decryption using a secret-key, and 
charging means for calculating charge information 
in accordance with information transmission or re- 
ception time measured by the time measurement 30 
means. 

With the above arrangement, since the secret 
and public key encryption systems are selectively 
adopted, the drawbacks of the prior arts can be 
eliminated, and high-speed information can be 35 
safely encrypted and transmitted. 

More specifically, when real-time communica- 
tion type information is to be encrypted, the secret- 
key cryptosystem which can perform high-speed 
encryption/decryption processing by a relatively 40 
simple encryption method is used. Meanwhile, 
when storage type information is to be encrypted, a 
communication is performed using the public-key 
cryptosystem which can reduce a fear of decryp- 
tion by a third party although it performs 45 
encryption/decryption processing at low speed. 

When a secret-key for encrypting real-time 
communication type information is determined in 
advance, a communication is performed using the 
public-key cryptosystem used in encryption of stor- so 
age type information, and the determined secret- 
key is abandoned after each communication. Thus, 
the secret-key for encrypting real-time communica- 
tion type information can be prevented from being 
found out by a third party, and high-speed informa- 55 
tion can be safely transmitted. 

Other features and advantages of the present 
invention will be apparent from the following de- 



scription taken in conjunction with the accompany- 
ing drawings, in which like reference characters 
designate the same or similar parts throughout the 
figures thereof. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Figs. 1A and 1B are block diagrams showing the 
first embodiment according to the present inven- 
tion; 

Fig. 2 is a schematic diagram showing a mul- 
timedia network system to which the first em- 
bodiment is applied; 

Fig. 3 is a flow chart showing a schematic 
operation of the first embodiment; 
Fig. 4 is a diagram showing a function of a 
portion for performing encryption using a public 
key in Figs. 1Aand 1B; 

Fig. 5 is a diagram showing a function of a 
portion for putting a digital signature in Figs. 1A 
and 1 B; 

Figs. 6A and 6B are block diagrams of a meet- 
ing system according to the second embodi- 
ment of the present invention; 
Fig. 7 is a block diagram of an interface for a 
transmitter in the second embodiment; and 
Fig. 8 is a block diagram of an interface for a 
receiver in the second embodiment. 
DETAILED DESCRIPTION OF THE INVENTION 

An embodiment of the present invention will be 
described in detail hereinafter with reference to the 
accompanying drawings. 

[First Embodiment] 

The first embodiment of the present invention 
will be described below with reference to Figs. 1A 
to 4. 

Figs. 1A and 1B are block diagrams of the first 
embodiment of the present invention, Fig. 2 is a 
schematic diagram showing a multimedia network 
system to which the first embodiment is applied, 
Fig. 3 is a flow chart showing a schematic opera- 
tion of the first embodiment, Fig. 4 is a diagram 
showing a function of a portion for performing 
encryption using a public-key in Figs. 1A and 1B, 
and Fig. 5 is a diagram showing a function of a 
portion for putting a digital signature in Figs. 1A 
and 1B. 

In Figs. 1A and 1B, reference numeral 1 de- 
notes a first terminal for encrypting and transmit- 
ting real-time communication type information; 2, a 
second terminal for receiving and decrypting the 
encrypted real-time communication type informa- 
tion; and 3, a transmission path. 

In the first terminal 1, reference numeral 101 
denotes a magnetic storage device for storing stor- 
age type information such as computer files, elec- 
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tronic slips, and the like in the transmission termi- 
nal 1; 102, a digital signature unit for putting a 
digital signature for, when storage type information 
is transmitted, certifying that the information is 
surely transmitted from the first terminal 1, and is 
not forged by a third party; 103, a public-key 
encryption unit for encrypting storage type informa- 
tion using a public encryption key inherent to the 
second terminal 2 as a destination of information; 

104, a public-key decryption unit for decrypting 
storage type information, which is encrypted using 
a public encryption key inherent to the first terminal 
1 and is transmitted to the first terminal, using a 
secret decryption key inherent to the terminal 1; 

105, a signature confirmation unit for confirming a 
digital signature for certifying that the storage type 
information decrypted by the public-key decryption 
unit 104 is surely transmitted from the second 
terminal 2, and is not forged by a third party; 106, 
a real-time communication type information gener- 
ator, such as a TV camera 106a, a VTR 106b, and 
the like, for generating digital real-time communica- 
tion type information; 107, a synchronization signal 
generator for performing synchronization necessary 
for communications between the first and second 
terminals 1 and 2; 108, a clock extraction unit for 
extracting a clock signal from real-time commu- 
nication type information from the real-time com- 
munication type information generator 106; 109, a 
pseudo random number generator for generating a 
pseudo random number string which has a one-to- 
one correspondence with a data key given from the 
magnetic storage device 101, and is synchronous 
with a clock signal from the clock extraction unit 
108; 110, an EX-OR gate for logically EX-ORingin- 
formation from the real-time communication type 
information generator 106, and the pseudo random 
number from the pseudo random number generator 
109; 111, a charge information acquisition unit for 
measuring an operation state of the pseudo ran- 
dom number generator 109, and acquiring informa- 
tion associated with a charge to be paid for in- 
formation to be transmitted; and 112, a commu- 
nication interface for transmitting information from 
the public-key encryption unit 103, and a signal 
from the EX-OR gate 110, and receiving signals 
from the transmission path 3 and outputting them 
to the public-key decryption unit 104. 

In the second terminal 2, reference numerals 
201 to 205 and 212 denote a magnetic storage 
device, a digital signature unit, a public key en- 
cryption unit, a public-key decryption unit, a signa- 
ture confirmation unit, and a communication inter- 
face similar to the components 101 to 105 and 112 
in the first terminal. Reference numeral 206 de- 
notes a real-time communication type information 
processor, comprising, e.g., a CRT 206a, a VTR 
206b, a magnetic storage device 206c, and the 



like, for displaying, storing, and processing real- 
time communication type information; 207, a syn- 
chronization signal extraction unit for extracting a 
synchronization signal generated by the synchro- 
5 nization signal generator 107 from signals transmit- 
ted through the transmission path 3; 208, a re- 
ceived clock extraction unit for extracting a clock 
component from transmitted signals; 209, a pseudo 
random number generator for. when the same key 
10 as the pseudo random number generator 109 in 
the first terminal 1 as a transmitter of real-time 
communication type information is given, generat- 
ing the same pseudo random number; and 210, an 
EX-OR gate for logically Ex-ORing information re- 
ts ceived from the communication interface 212 and 
the pseudo random number from the pseudo ran- 
dom number generator 209. 

in Fig. 2, reference numeral 11 denotes a 
transmitting station, corresponding to the first ter- 
20 minal 1 shown in Figs. 1A and 1B, for providing 
information, and receiving a charge for the informa- 
tion; 21 A to 21 C, 22A to 22C, 23A to 23C, and 24A 
to 24C, receiving stations, having the same ar- 
rangement as the second terminal 2 shown in Figs. 
25 1A and 1B, for receiving information from the trans- 
mitting station 11, and paying the charge for the 
received information; 31, a communication satellite; 
32, a trunk station for providing a trunk commu- 
nication network using an optical fiber; 33, a corn- 
so munication network such as a CATV; 34, a local 
area network (LAN); 341 to 344, nodes for ex- 
changing information between the LAN 34 and ex- 
ternal stations; 35, a ground station for performing 
communications between the transmitting station 
35 11 and the communication satellite 31; and 351, 
and 361 to 363, antennas used in communications 
between the communication satellite and the 
ground station. 

Note that the transmission path 3 :n Figs. 1A 
40 and 1B includes a transmission path using the 
ground station 35 and the communication satellite 
31 shown in Fig. 2, a transmission path using the 
trunk station 32, a transmission path using the 
CATV network 33, a transmission path using the 
45 LAN 34, and the like. 

The schematic operation of the system of this 
embodiment will be described below with reference 
to the flow chart shown in Rg. 3. 

In the system shown in Fig. 2, the transmitting 
so station 11 provides real-time communication type 
information such as video information in accor- 
dance with requests from the receiving stations 
21 A to 24C, and this information is transmitted to 
the requesting receiving station via the communica- 
55 tion satellite 31, the trunk station 32, the CATV 
network 33, or the LAN 34. The receiving station 
pays the charge for this information. All the pieces 
of information excluding payment of this charge are 
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transmitted through one of the transmission paths 
shown in Fig. 2, i.e., in an on-line manner between 
the transmitting station 11 and the receiving sta- 
tions 21Ato24C. 

The network shown in Fig. 2 must take coun- 
termeasures against the following illegal actions (1) 
to (4). 

(1) A third party taps real-time communication 
type information without paying any charge. 

(2) A third party disguises another receiving 
station, and requests and receives information. 

(3) A receiving station alters a demand elec- 
tronic slip after it receives information. 

(4) A receiving station forges a receipt electronic 
slip without paying a charge. 

In this embodiment, in order to prevent such 
illegal actions, the transmitting station 11 as the 
first terminal 1 is equipped with the public-key 
encryption unit 103. the public key decryption unit 
104, and the pseudo random number generator 
109 shown in Figs. 1A and 1B, and each of the 
receiving stations 21 A to 24C as the second termi- 
nals is equipped with the public-key encryption unit 
203, the public-key decryption unit 204, and the 
pseudo random number generator 209. 

Therefore, a procedure from when each receiv- 
ing station requests information until it pays a 
charge is as follows. 

In step S1, a file (electronic slip) for ordering 
information is transmitted from a given receiving 
station to the transmitting station 11. This file is 
encrypted/decrypted by a public-key system (to be 
described later) when it is transmitted/received. 
The transmitting station which received the file 
transmits real-time communication type information 
according to the file to the ordering receiving sta- 
tion in step S2. The transmission information is 
encrypted/decrypted by a secret-key system, as 
will be described later. 

In step S3, the receiving station transmits an 
electronic slip for confirming reception to the trans- 
mitting station 11. In step S4, the transmitting sta- 
tion 11 transmits a charge demand electronic slip 
to the receiving station. The electronic slip is 
encrypted/decrypted by the public-key system (to 
be described later) when it is transmitted/received. 

The receiving station pays the charge using a 
means outside a network in step S5. The transmit- 
ting station 11 which confirmed the payment trans- 
mits a receipt electronic slip to the ordering receiv- 
ing station in step S6. This electronic slip is also 
encrypted/decrypted by the public-key system (to 
be described later) when It is transmitted/received. 

Information is provided and a charge is paid via 
the above-mentioned procedure. 

Encryption/decryption processing of this em- 
bodiment in the information communication se- 
quence shown in Fig. 3 which has been schemati- 



cally described above will be described in detail 
below. 

In this embodiment, real-time communication 
type information is encrypted/decrypted by the 
s secret-key system using the pseudo random num- 
ber generators 109 and 209 when it is 
transmitted/received. 

In contrast to this, electronic slips are encryp- 
ted by the public-key system using the corre- 
70 sponding encryption and decryption units. 

Encryption/decryption of real-time communica- 
tion type information by the secret-key system of 
this embodiment will be briefly described below. 
The transmitting station 1 1 of this embodiment 
75 logically EX-ORs a string of real-time communica- 
tion type information to be transmitted and a pseu- 
do random number string generated by the pseudo 
random number generator 109 based on a data 
encryption key from the magnetic storage device 
20 101, thereby encrypting and transmitting the real- 
time communication type information. 

A receiving station logically EX-ORs the en- 
crypted signal and a pseudo random number string 
which is generated by the pseudo random number 
25 generator 209 based on a data encryption key from 
the magnetic storage device 201 and is the same 
as that generated by the pseudo random number 
generator 109 of the transmitting station 11, there- 
by decrypting the information. 
30 In the above description, the transmitting sta- 
tion and the receiving station employ the same 
pseudo random number generator. Therefore, when 
the same data encryption key is given to these 
generators, the same pseudo random number 
35 string can be generated. 

The public-key encryption/decryption system 
of this embodiment will be described below. 

In this embodiment, the public-key system is 
used to encrypt and transmit information request 
40 and receipt data, charge demand and receipt elec- 
tronic slips, and a data encryption key in the 
secret-key system. 

When the data encryption key in the secret-key 
system which is transmitted from the transmitting 
45 station 1 1 to a source receiving station in advance 
is encrypted and transmitted by the public-key 
cryptosystem, the key can be prevented from be- 
ing known to a third party. The key is changed for 
each communication, so that an encryption pseudo 
so random number string can be prevented from be- 
ing found out upon comparison of a plurality of 
communication texts. 

Since this embodiment employs these encryp- 
tion systems, real-time communication type infor- 
55 mation having a high bit rate can be safely encryp- 
ted at high speed in real time. 

In this embodiment, in order to particularly 
prevent the above-mentioned illegal actions (2) to 
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(4), electronic slips are encrypted/decrypted by the 
public-key system, and the terminals have a func- 
tion of performing a digital signature and a function 
of confirming the digital signature using the digital 
signature units 102 and 202, and the signature 
confirmation units 105 and 205 for certifying a 
transmission source simultaneously with encryp- 
tion. 

Thus, in particular, the illegal actions (2) to (4) 
described above can be effectively prevented. For 
this reason, when an electronic slip is forged by a 
third party or is altered after transmission, such 
forgery or alteration can be detected. 

The above-mentioned public-key cryptosystem 
and the digital signature function of this embodi- 
ment will be described below with reference to 
Figs. 4 and 5. 

The public-key cryptosystem of this embodi- 
ment will first be described in detail with reference 
to Fig. 4. 

In Fig. 4, an input "x" represents non-encryp- 
ted information such as an electronic slip or a data 
encryption key; "ke n , a key used for encrypting 
information by the public-key cryptosystem; "E", 
an encryption unit for encrypting the information 
n x n using the key "ke"; "y". information encrypted 
by the encryption unit E; "kd", a key used for 
decryption; "D", a decryption unit for decrypting 
the encrypted information "y" using the key "kd"; 
"ks", information for determining a pair of the en- 
cryption key "ke" and the decryption key "kd"; and 
"F" and "G", devices for respectively generating 
the encryption key "ke" and the decryption key 
"kd" based on the information "ks". 

The information "ks" and the decryption key 
"kd" are preserved as secret information inherent 
to each terminal so as not be disclosed outside the 
terminal. In contrast to this, the encryption key 
"ke n is disclosed to all the terminals as public 
information inherent to each terminal. 

In the above arrangement, a transmitting termi- 
nal encrypts information using the public encryp- 
tion key inherent to a destination terminal to which 
information is to be transmitted, and transmits the 
encrypted information. The encryption key "ke" 
and the decryption key "kd" are paired. In this 
case, a pair of keys with which the decryption key 
"kd" cannot be presumed from the encryption key 
"ke" are used. Such a pair of keys are generated 
by utilizing a function called a one way function. 

As an example of the one way function, if two 
relatively prime integers are represented by "p" 
and "q", their product "n" is given by (n = p*q). 
More specifically, "n" can be easily calculated 
from "p" and "q", but it is difficult to obtain "p" 
and "q" from "n". By utilizing this fact, the above- 
mentioned pair of keys can be generated. 

In this embodiment, information is encrypted 



using a public encryption key, and the encrypted 
information is transmitted. The encrypted informa- 
tion is decrypted using a secret decryption key 
which cannot be presumed from the encryption 
s key, so that safe encryption transmission can be 
guaranteed without transmitting a decryption key. 

The digital signature function of this embodi- 
ment will be described in detail below with refer- 
ence to Fig. 5. 

io In Fig. 5, reference symbol "s" denotes a 
signed communication text. The same reference 
symbols denote the portions having the same func- 
tions as in Fig. 4, and a detailed description thereof 
will be omitted. 

75 In the above arrangement when a digital signa- 
ture is transmitted, a transmitting terminal decrypts 
original information using its own decryption key, 
and transmits the decrypted information, A receiv- 
ing terminal encrypts the decrypted information 

20 using a public encryption key. Since encryption 
and decryption have a mathematically inverse-func- 
tional relationship, even when the above operations 
are performed, the received and encrypted infor- 
mation can be restored to the original one before 

25 being subjected to decryption in the transmitting 
terminal. The decryption key "kd" is preserved as 
a secret method of a transmitting terminal, as de- 
scribed above, and cannot be presumed from the 
public encryption key "ke". Therefore, the receiv- 

30 ing terminal encrypts the transmitted signed com- 
munication text "s" using the public encryption 
key, thereby obtaining information "x" as an origi- 
nal communication text. 

As a result, it can be certified that this informa- 

35 tion "x" is surely issued from a terminal which 
discloses the encryption key. Information forged by 
a third party who does not know a decryption key 
becomes one which is not subjected to proper 
encryption processing. Even if information is en- 

40 crypted by an improper encryption key, a non- 
sense signal (information) can only be obtained. 

Detailed roles of the respective units when the 
above-mentioned processing operations are per- 
formed will be described below along an actual 

4s procedure. 

In the following description, a case wilt be 
exemplified wherein the receiving station 24B re- 
ceives information from the transmitting station 11, 
and pays a charge for the received information. 

so The same applies to communications of other sta- 
tions, as a matter of course. 

The receiving station 24B as the terminal 2 
shown in Figs. 1A and 1B executes processing in 
step S1 shown in Fig. 3. More specifically, the 

55 terminal 24B generates an electronic slip for re- 
questing real-time communication type information 
(order slip) in the magnetic storage device 201. 
Subsequently, the digital signature unit 202 puts a 
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digital signature on this electronic slip using a 
secret signature decryption key inherent to the 
receiving station 24B. Furthermore, the encryption 
unit 203 encrypts the electronic slip including the 
digital signature using a public encryption key in- 
herent to the transmitting station 1 1 , and transmits 
the encrypted slip to the transmission path 3 via 
the communication interface 212. 

The receiving station 24B is connected to the 
LAN 34 via the node 343, and the signed encryp- 
ted slip from the receiving station 24B is sent to 
the LAN 34 via the node 343. The encrypted slip is 
then sent to the transmitting station 11 via the 
nodes 344 and 341. 

This slip is fetched in the transmitting station 
11 by the communication interface 112. This signal 
is decrypted by the public-key decryption unit 104 
using a secret decryption key inherent to the trans- 
mitting station 11. The decrypted information in- 
cludes the digital signature transmitted from the 
receiving station 24B, and the signature confirma- 
tion unit 105 confirms the digital signature transmit- 
ted from the receiving station 24B, thus certifying 
that the electronic slip is sent from the receiving 
station 24B, This electronic slip is stored in the 
magnetic storage device 101 . 

The transmitting station 11 then executes pro- 
cessing in step S2 shown in Fig. 3. More specifi- 
cally, the station 11 determines a secret-key en- 
cryption data key used when real-time communica- 
tion type information is transmitted. The station 11 
causes the digital signature unit 102 to put a signa- 
ture on the data key. The public-key encryption 
unit 103 then encrypts the data key using a public 
key. The data key is transmitted to the receiving 
station 24B. The receiving station 24B decrypts the 
received signal, confirms the signature, and re- 
ceives the data key. The station 24B sets up the 
pseudo random number generator 209 using this 
data key to prepare for reception of real-time com- 
munication type information. Thereafter, the receiv- 
ing station 24B sends, to the transmitting station 
11, a message indicating that the station 24B is 
ready for reception. 

When the transmitting station 11 receives the 
reception ready message, it sets up the pseudo 
random number generator 109 using the same data 
key as that transmitted to the receiving station 24B, 
and thereafter, energizes the synchronization signal 
generator 107 to generate a synchronization signal. 
The station 11 then starts an operation of a re- 
quested device of the real-time communication 
type information generator 106, and logically EX- 
ORs a signal train output from this device and a 
pseudo random number string, thereby encrypting 
the signal train. The station 11 transmits the en- 
crypted signal train to the receiving station 24B via 
the communication interface 112. In the receiving 



station 24B which received the encrypted signal 
train via the communication interface 212, the syn- 
chronization signal extraction unit 207 detects a 
synchronization signal in this signal train to start 
5 the pseudo random number generator 209. 

The EX-OR gate 210 logically EX-ORs the en- 
crypted real-time communication type information 
from the transmitting station 11, and a pseudo 
random number string generated by the pseudo 
to random number generator 209, thereby decrypting 
the information. The decrypted information is input 
to the CRT 206a, the VTR 206b, and the like. 

The pseudo random number generators 109 
and 209 of the transmitting station 11 and the 
75 receiving station 24B are respectively connected to 
the charge information acquisition units 111 and 
211 for measuring operation times of their own 
apparatuses and acquiring charge information. The 
charge information acquisition units 111 and 211 
20 allow demand and payment of a charge corre- 
sponding to a transmitted information volume. 

In this embodiment, since the charge informa- 
tion acquisition units 111 and 211 for measuring 
operation times of their own apparatuses and ac- 
25 quiring charge information are connected, the ac- 
quired charge information is output to, e.g., a dis- 
play, so that both the transmitting and receiving 
stations can grasp the charge information. Thus, 
preparation for a later payment can be smoothly 
30 performed. 

When the acquired charge information is trans- 
mitted at the end of a communication, a future 
trouble can be prevented. 

Upon completion of transmission of the real- 
35 time communication type information, the receiving 
station 24B executes processing in step S3 in Fig. 
3. More specifically, the station 24B puts a signa- 
ture on and encrypts a receipt electronic slip 
(reception confirmation slip) under the same control 
40 as described above, and sends it to the transmit- 
ting station 1 1 . 

The transmitting station 11 similarly puts a 
signature on and encrypts a charge demand elec- 
tronic slip, and sends it to the receiving station 24B 
45 in step S4 in Fig. 3. 

The receiving station 24B pays the charge to 
the transmitting station 11 via a bank or by another 
method in step S5. 

The transmitting station 11 puts a signature on 
so and encrypts a receipt electronic slip, and sends it 
to the receiving station 24B in step S6. thus com- 
pleting a unit of information service transaction. 

As described above, since this embodiment 
executes the above-mentioned procedure, real-time 
55 communication type information can be safely en- 
crypted and transmitted at high speed in real time 
while an encryption key is prevented from being 
known to or presumed by a third party. In addition, 
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electronic slips can be prevented from being 
forged or altered. 

Since all the communication texts are encryp- 
ted, a third party cannot know contents of informa- 
tion transactions. Therefore, not only contents but 
also the presence/absence of communications can 
be kept secret. 

[Another Embodiment] 

The present invention is not limited to the 
encryption/decryption processing in the above- 
mentioned system, and is not limited to the ar- 
rangement and control of the above embodiment 
either. The encryption/decryption processing of the 
present invention is applicable to various other data 
transmission systems. 

The second embodiment of the present inven- 
tion in which the present invention is applied to 
another system will be described below with refer- 
ence to Figs. 6A to 8. 

In recent years, a meeting system utilizing a 
network, so-called, an electronic meeting or televi- 
sion meeting system, has become increasingly 
popular. Such a meeting system utilizes a LAN 
provided in an office and a public circuit to ex- 
change signals from a television camera for picking 
up images of men or articles, a document image, 
or signals from an image scanner between meeting 
rooms at remote locations. In general, a plurality of 
electronic meeting rooms are connected to the 
LAN provided in the office, and information is trans- 
mitted through a public circuit network. Therefore, 
in order to prevent a meeting from being inter- 
cepted by another meeting room or to prevent 
information being tapped by a third party, informa- 
tion must be encrypted. Figs. 6A and 6B are sche- 
matic block diagrams of the meeting system of this 
embodiment. In Figs. 6A and 6B, reference nu- 
meral 5 denotes a first office in a given enterprise; 
and 6, a second office of the given enterprise. 
These two offices are connected through a public 
circuit 7. 

In the first office 5, reference numeral 51 de- 
notes a first meeting room A of the office 5; 52 and 
53. second and third meeting rooms C and D of 
this office; 511 to 515, devices equipped in the 
meeting room A (reference numeral 51 1 denotes a 
controller; 512, a display; 513, a document pre- 
sentation CRT; 514, a television camera; and 515, 
an image scanner); 551 to 555, nodes; 561, a 
transmission line of the LAN; and 562, a transmis- 
sion path branching from the LAN. These transmis- 
sion lines comprise coaxial cables or optical fiber 
cables. 

In the second office 6, meeting rooms B 61 
and E 62, nodes 651 to 655, an interface 64. and 
transmission paths 661 and 662 which are the 



same as those in the office 5 are equipped. 

Figs. 7 and 8 show schematic arrangements of 
communication interfaces for executing encryption 
of the respective devices excluding the controllers 

s equipped in the meeting rooms shown in Figs. 6A 
and 6B in the meeting system of this embodiment 
with the above arrangement 

Fig. 7 is a diagram of an interface for a trans- 
mitting equipment such as the television camera, 

10 the image scanner, or the like for transmitting in- 
formation, and Fig. 8 is a diagram of an interface 
for a receiving equipment such as the display, the 
CRT, or the like for receiving information. 

In Figs. 7 and 8, reference numerals 71 and 81 

75 denote these information equipments; 72 and 82, 
clock extraction circuits for extracting clock compo- 
nents from information signals; 73 and 83; pseudo 
random number generators; 74 and 84, control 
circuits for controlling synchronization of commu- 

20 nications, generation of pseudo random numbers, 
automatic operations of the information equip- 
ments, and the like; 75 and 85, EX-OR gates for 
logically EX-ORing signals; and 76 and 86, 
transmission/reception circuits for 

25 transmitting/receiving signals onto/from transmis- 
sion lines. 

The operation of this embodiment with the 
above arrangement will be described below. In the 
following description, a case will be exemplified 
30 below wherein a meeting is performed between the 
meeting rooms A 51 and B 61. 7Tte meeting rooms 
52, 53, 62, and the like have the same functions as 
those of these meeting rooms, and the same oper- 
ations are performed among other meeting rooms, 

35 as a matter of course. 

Assume that the controllers of the meeting 
rooms, e.g., the controllers 511 and 611 have an 
information encryption function by the public-key 
cryptosystem described in the first embodiment. 

40 The controller 511 of the meeting room 51 
determines a data key for the secret-key cryp- 
tosystem for the equipments in the meeting rooms 
51 and 61 prior to the meeting between the meet- 
ing rooms 51 and 61 . The controller 51 1 encrypts 

45 data key by the same public-key system as in the 
first embodiment, and transmits it to the controller 
611 of the meeting room 61. The controller 511 
then transmits the data key to the control circuits 
74 and 84 of all the equipments in the meeting 

so room 51, thereby setting up encryption commu- 
nication interfaces of these equipments. 

The controller 61 1 similarly transmits the data 
key to the controllers of the equipments in the 
meeting room 61 , thereby setting up the interfaces. 

55 Thereafter, the respective equipments are syn- 
chronized using synchronization signals therefrom, 
and a communication is started. 

In this state, information from each transmitting 
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equipment is logically EX-ORed with a pseudo 
random number string based on the predetermined 
data key so as to be encrypted, and the encrypted 
information is transmitted. Each receiving equip- 
ment decrypts the signal using the same pseudo 5 
random number string, and receives it. 
Encryption/decryption during these operations are 
performed in the same manner as in the first em- 
bodiment described above. 

When the electronic meeting is performed in 10 
this manner, it can be prevented from being inter- 
cepted from, e.g., the meeting room C 52 or D 53. 

The information can also be prevented from 
being tapped by a third party during transmission 
along the public circuit- i« 

The first and second embodiments of the 
present invention have been described in detail. 
However, the application range of the present in- 
vention is not limited to these embodiments. 

More specifically, in multimedia networks for 20 
transmitting real-time communication type informa- 
tion which must be encrypted in real time, and 
storage type information which requires safety- 
guaranteed encryption and certification of an in- 
formation source via the same medium, the present 25 
invention is applicable to various other systems, 
and does not depend on network systems, and 
kinds of terminals. 

As described above, according to the present 
invention, in a multimedia network for communicat- 30 
ing real-timecommunication type information and 
storage type information, the real-time communica- 
tion type information is encrypted by the secret- 
key system, and the storage type information is 
encrypted by the public-key system. In addition, a 35 
data key in the secret-key system is encrypted by 
the public-key system, and the encrypted key is 
transmitted. 

For this reason, in particular, real-time commu- 
nication type information can be encrypted more 40 
safely at higher speed. 

Since a means for measuring an operation time 
of secret-key encryption device is arranged, charge 
information for the transmitted information can be 
acquired by a simple device. 46 

As many apparently widely different embodi- 
ments of the present invention can be made with- 
out departing from the spirit and scope thereof, it is 
to be understood that the invention is not limited to 
the specific embodiments thereof except as de- so 
fined in the appended claims. 

There is disclosed a multimedia network sys- 
tem for transmitting real-time communication type 
information such as a television video signal and 
storage type information such as a computer file 55 
using at least one transmission path. The real-time 
communication type information is encrypted by a 
secret-key system, and the storage type informa- 



tion is encrypted by a public-key system. A com- 
mon encryption key of the public-key system is 
changed in each communication. High-speed in- 
formation can be safely encrypted and transmitted. 

Claims 

1. A multimedia network system for transmitting 
real-time communication type information such 
as a television video signal and storage type 
information such as a computer file using at 
least one transmission path, comprising: 

a transmitting terminal comprising secret-key 
encryption means for encrypting the real-time 
communication type information by a secret- 
key system in which only transmitting and re- 
ceiving terminals of the information have en- 
cryption and decryption keys, public-key en- 
cryption means for encrypting the storage type 
information by a public-key system in which all 
the terminals commonly have their own en- 
cryption keys, and only a receiving terminal of 
the information has its own decryption key, 
and first secret-key control means for causing 
said secret-key encryption means to change a 
common encryption key in each communica- 
tion, and causing said pubiic-key encryption 
means to encrypt and transmit the changed 
key. 

2, A multimedia network system for transmitting 
real-time communication type information such 
as a television video signal and storage type 
information such as a computer file using at 
least one transmission path, comprising: 

a receiving terminal comprising secret-key de- 
cryption means for decrypting the real-time 
communication type information by a secret- 
key system in which only transmitting and re- 
ceiving terminals of the information have en- 
cryption and decryption keys, public-key de- 
cryption means for decrypting the storage type 
information by a public-key system in which all 
the terminals commonly have their own en- 
cryption keys, and only a receiving terminal of 
the information has its own decryption key, 
and second secret-key control means for caus- 
ing said secret-key decryption means to 
change a common decryption key in each 
communication. 

3. A multimedia network system for transmitting 
real-time communication type information such 
as a television video signal and storage type 
information such as a computer file using at 
least one transmission path, comprising: 
a transmitting terminal comprising secret-key 
encryption means for encrypting the real-time 



17 



EP0 438 154 A2 



18 



communication type information by a secret- 
key system in which only transmitting and re- 
ceiving terminals of the information have en- 
cryption and decryption keys, public key en- 
cryption means for encrypting the storage type 5 
information by a public-key system in which all 
the terminals commonly have their own en- 
cryption keys, and only a receiving terminal of 
the information has its own decryption key, 
and first secret-key control means for causing 10 
said secret-key encryption means to change a 
common encryption key in each communica- 
tion, and causing said public key encryption 
means to encrypt and transmit the changed 
key; and 15 
a receiving terminal comprising a secret-key 
decryption means for decrypting the real-time 
communication type information by secret-key 
system in which only transmitting and receiv- 
ing terminals of the information have encryp- 20 
tion and decryption keys, public-key decryp- 
tion means for decrypting the storage type 
information by a public-key system in which all 
the terminals commonly have their own en- 
cryption keys, and only a receiving terminal of 25 
the information has its own decryption key, 
and second secret-key control means for caus- 
ing said secret-key decryption means to 
change a common decryption key in each 
communication. so 

4. The system according to claim 3, wherein said 
transmitting terminal for performing encryption 
using the secret-key by said secret-key en- 
cryption means or said receiving terminal for 35 
performing decryption using the secret-key by 
said secret-key decryption means further com- 
prises time measurement means for measuring 
an encryption or decryption time, and charge 
means for calculating charge information in 40 
accordance with a transmission or reception 
time of information measured by said time 
measurement means. 

5- The system according to claim 3, wherein a 45 
file for ordering information from said receiving 
terminal to said transmitting terminal, and the 
real-time communication type information 
transmitted from said transmitting terminal to 
said receiving terminal in accordance with the so 
file are encrypted using the secret-key by said 
secret-key encryption means, and a reception 
confirmation file for the real-time communica- 
tion type information, which fiie is transmitted 
from said receiving terminal to said transmit- 55 
ting terminal, and a charge demand file from 
said transmitting terminal to said receiving ter- 
minal are encrypted by said public key en- 



cryption means, and are decrypted by the de- 
cryption key inherent to said receiving termi- 
nal. 

6. The system according to claim 5, wherein said 
public-key encryption means of said transmit- 
ting terminal encrypts real-time communication 
type information by logically EX-ORing a real- 
time communication type information string 
and a pseudo random number string generated 
based on the stored data encryption key, and 
transmits the encrypted real-time communica- 
tion type information. 

7. The system according to claim 5, wherein said 
public-key encryption means of said receiving 
terminal decrypts real-time communication 
type information by logically EX-ORing a re- 
ceived real-time communication type informa- 
tion string and a pseudo random number string 
generated based on the stored data encryption 
key. 

8. The system according to claim 5, wherein 
said transmitting terminal further comprises 
digital signature means for putting a digital 
signature for certifying a transmission source 
simultaneously with encryption when files are 
transmitted, and 

said receiving terminal further comprises con- 
firmation means for confirming the digital sig- 
nature. 
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